The Hacker News

SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits

Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.

New Linux botnet SSHStalker uses old-school IRC for C2 comms

A newly documented Linux botnet named SSHStalker is using the IRC (Internet Relay Chat) communication protocol for command-and-control (C2) operations.
Cybernews

Major malware adds Linux variant, thousands of hosting servers infected

A newly discovered Linux variant of the SystemBC remote access trojan has infected over 10,000 hosting servers globally.
Hosted on MSN

Kimwolf DDoS botnet already grabbed 1.8M devices. What we know

Investigators have already seen that Kimwolf’s C2 domains have been successfully taken down by unknown parties at least three times in Dec, yet the botnet has always returned stronger, a pattern ...
The Hacker News

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

Key cyber updates on ransomware, cloud intrusions, phishing, botnets, supply-chain risks, and nation-state threat activity.